MATLOCK.CA
86Articles
6Categories
2025-08-27Date
🐛
Citrix NetScaler ADC and Gateway Hit by Ongoing Attacks Exploiting 0-Day RCE
GBHACKERS.COM — 27 Aug 2025
🐛
IPFire Firewall Admin Panel Vulnerability Enables Persistent JavaScript Injection
GBHACKERS.COM — 27 Aug 2025
🐛
NVIDIA NeMo AI Curator Vulnerability Allows Code Execution and Privilege Escalation
GBHACKERS.COM — 27 Aug 2025
🐛
Over 28,000 Citrix devices vulnerable to new exploited RCE flaw
KEVBLEEPINGCOMPUTER.COM — 27 Aug 2025
🐛
Russia-based Yandex employee oversees open-source software approved for Department of Defense use
SH.ITJUST.WORKS — 27 Aug 2025
🐛
Vulnerabilities impacting Citrix NetScaler ADC and NetScaler Gateway - CVE-2025-7775, CVE-2025-7776 and CVE-2025-8424
CYBER.GC.CA — 2025-08-27
⚠️
LLMs easily exploited using run-on sentences, bad grammar, image scaling
CSOONLINE.COM — 27 Aug 2025
⚠️
Kubernetes Security: Wie Sie Ihre Cluster (besser) absichern
CSOONLINE.COM — 27 Aug 2025
⚠️
Critical Chrome Use-After-Free Flaw Enables Arbitrary Code Execution
GBHACKERS.COM — 27 Aug 2025
⚠️
Hackers Abuse Compromised OAuth Tokens to Access and Steal Salesforce Corporate Data
GBHACKERS.COM — 27 Aug 2025
⚠️
5 ways to improve cybersecurity function while spending less
CSOONLINE.COM — 27 Aug 2025
⚠️
A Simple Phrase Defeats GPT5 Security
CYBERSECURITYTODAY.LIBSYN.COM — 27 Aug 2025
⚠️
Only 49% of companies to increase cyber budget after a breach
CSOONLINE.COM — 27 Aug 2025
⚠️
New Cache Deception Attack Exploits Miscommunication Between Cache and Web Server
GBHACKERS.COM — 27 Aug 2025
⚠️
CISA Issues New ICS Advisories on Critical Vulnerabilities and Exploits
GBHACKERS.COM — 27 Aug 2025
⚠️
vCISO Benefits as the CISO Becomes Strategic and the Board's Responsible for Security ... - BSW #410
YOUTUBE.COM — 2025-08-27
⚠️
ShadowCaptcha Exploit: Massive WordPress Site Compromise Used to Execute Malicious Commands on Victims
GBHACKERS.COM — 27 Aug 2025
⚠️
Salesloft OAuth Breach via Drift AI Chat Agent Exposes Salesforce Customer Data
THEHACKERNEWS.COM — 27 Aug 2025
⚠️
Multiple Vulnerabilities in NetScaler ADC and NetScaler Gateway Could Allow for Remote Code Execution
CISECURITY.ORG — 27 Aug 2025
⚠️
Nagios Flaw Enables Remote Attackers to Run Arbitrary JavaScript via XSS
GBHACKERS.COM — 27 Aug 2025
⚠️
Citrix Patches Exploited NetScaler Zero-Day
KEVSECURITYWEEK.COM — 27 Aug 2025
⚠️
PromptLock: First AI-Powered Ransomware Emerges
SECURITYWEEK.COM — 27 Aug 2025
⚠️
New Malware Exploits TASPEN Legacy Systems to Target Indonesian Elderly
GBHACKERS.COM — 27 Aug 2025
⚠️
Fachkräftemangel bedroht Cybersicherheit
CSOONLINE.COM — 27 Aug 2025
⚠️
Why zero trust is never 'done' and is an ever-evolving process
BLEEPINGCOMPUTER.COM — 27 Aug 2025
⚠️
Storm-0501 debuts a brutal hybrid ransomware attack chain
CSOONLINE.COM — 27 Aug 2025
⚠️
Cephalus Ransomware Exploits RDP for Initial Access in Latest Attack Campaign
GBHACKERS.COM — 27 Aug 2025
⚠️
Hundreds of Salesforce Customers Hit by Widespread Data Theft Campaign
SECURITYWEEK.COM — 27 Aug 2025
⚠️
Someone Created First AI-Powered Ransomware Using OpenAI's gpt-oss:20b Model
THEHACKERNEWS.COM — 27 Aug 2025
⚠️
Whistleblower: DOGE put Social Security database covering 300 million Americans on insecure cloud
CSOONLINE.COM — 27 Aug 2025
⚠️
CISA and Partners Release Joint Advisory on Countering Chinese State-Sponsored Actors Compromise of Networks Worldwide to Feed Global Espionage Systems
CISA.GOV — Wed, 27 Aug 25 1
⚠️
FreePBX servers hacked via zero-day, emergency fix released
KEVBLEEPINGCOMPUTER.COM — 27 Aug 2025
⚠️
Critical Zip Slip Bug Enables Malicious File Manipulation on Unzip
GBHACKERS.COM — 27 Aug 2025
⚠️
Smashing Security podcast #432: Oops! I auto-filled my password into a cookie banner
GRAHAMCLULEY.COM — 27 Aug 2025
⚠️
The Prevalence of Web-Based RCE Vulnerabilities
F5.COM — 27 Aug 2025
⚠️
The Prevalence of Web-Based RCE Vulnerabilities
F5.COM — 27 Aug 2025
⚠️
Risky Business #804 -- Phrack's DPRK hacker is probably a Chinese APT guy
RISKY.BIZ — 27 Aug 2025
📢
Docker security advisory (AV25–546)
CYBER.GC.CA — 2025-08-27
📢
Joint cyber security advisory on worldwide network compromises by People’s Republic of China state-sponsored actors
CYBER.GC.CA — 2025-08-27
📢
CISA and Partners Release Joint Advisory on Countering Chinese State-Sponsored Actors Compromise of Networks Worldwide to Feed Global Espionage Systems
CISA.GOV — Wed, 27 Aug 25 1
📢
Global Salt Typhoon hacking campaigns linked to Chinese tech firms
BLEEPINGCOMPUTER.COM — 27 Aug 2025
📢
Cisco security advisory (AV25-547)
CYBER.GC.CA — 2025-08-27
📢
Drupal security advisory (AV25-548)
CYBER.GC.CA — 2025-08-27
📢
CISA and Partners Providing Real-Time Incident Response to Cyber Attack on State of Nevada
CISA.GOV — Wed, 27 Aug 25 1
🔥
TheSqua.re - 107,041 breached accounts
HAVEIBEENPWNED.COM — 27 Aug 2025
🔥
Home Assistant + Ubiquiti + AI = Home Automation Magic
TROYHUNT.COM — 27 Aug 2025
🔥
Underground Ransomware Gang Unleashes Innovative Tactics Targeting Global Organizations
GBHACKERS.COM — 27 Aug 2025
🔥
We Are Still Unable to Secure LLMs from Malicious Inputs
SCHNEIER.COM — 2025-08-27
🔥
Nevada State Offices Closed Following Disruptive Cyberattack
SECURITYWEEK.COM — 27 Aug 2025
🔥
Anthropic: Claude was weaponized for sophisticated cybercrimes, including a “vibe-hacking” data extortion scheme
SH.ITJUST.WORKS — 27 Aug 2025
🔥
Healthcare Services Group data breach impacts 624,000 people
BLEEPINGCOMPUTER.COM — 27 Aug 2025
🔥
Nx compromised: malware uses Claude code CLI to explore the filesystem
SH.ITJUST.WORKS — 27 Aug 2025
🔥
ShadowSilk Hits 36 Government Targets in Central Asia and APAC Using Telegram Bots
THEHACKERNEWS.COM — 27 Aug 2025
🔥
Anthropic Disrupts AI-Powered Cyberattacks Automating Theft and Extortion Across Critical Sectors
THEHACKERNEWS.COM — 27 Aug 2025
🔥
Storm-0501’s evolving techniques lead to cloud-based ransomware
MICROSOFT.COM — 27 Aug 2025
🔥
Cephalus ransomware: What you need to know
FORTRA.COM — 27 Aug 2025
🔥
IT system supplier cyberattack impacts 200 municipalities in Sweden
BLEEPINGCOMPUTER.COM — 27 Aug 2025
🔥
FBI says China’s Salt Typhoon hacked at least 200 US companies
TECHCRUNCH.COM — 27 Aug 2025
🔥
Experimental PromptLock ransomware uses AI to encrypt, steal data
BLEEPINGCOMPUTER.COM — 27 Aug 2025
🔥
Chinese Hacker Suspect Arrested in South Korea Over Major Financial Cyberattack
GBHACKERS.COM — 27 Aug 2025
🔥
Storm-0501 hackers shift to ransomware attacks in the cloud
BLEEPINGCOMPUTER.COM — 27 Aug 2025
🕵️
ISC Stormcast For Wednesday, August 27th, 2025 https://isc.sans.edu/podcastdetail/9588, (Wed, Aug 27th)
ISC.SANS.EDU — 27 Aug 2025
🕵️
The entire US Social Security database was uploaded on a random cloud server, Whistle-Blower Says
INFOSEC.PUB — 27 Aug 2025
🕵️
The entire US Social Security database was uploaded on a random cloud server, Whistle-Blower Says
SH.ITJUST.WORKS — 27 Aug 2025
🕵️
DOGE Allegedly Uploaded SSA’s Live Numident Database to Unsecured Cloud Server
GBHACKERS.COM — 27 Aug 2025
🕵️
Blind Eagle’s Five Clusters Target Colombia Using RATs, Phishing Lures, and Dynamic DNS Infra
THEHACKERNEWS.COM — 27 Aug 2025
🕵️
Spotify Launches Direct Messaging Feature Amid Security Concerns
GBHACKERS.COM — 27 Aug 2025
🕵️
Infostealers: The Silent Smash-and-Grab Driving Modern Cybercrime
SECURITYWEEK.COM — 27 Aug 2025
🕵️
TAG-144: Actors Attacking Government Entities With New Tactics, Techniques, and Procedures
GBHACKERS.COM — 27 Aug 2025
🕵️
95% of the Grid Runs on Unencrypted Protocols 😱
YOUTUBE.COM — 2025-08-27
🕵️
US sanctions fraud network used by North Korean ‘remote IT workers’ to seek jobs and steal money
TECHCRUNCH.COM — 27 Aug 2025
🕵️
What are You Working on Wednesday
INFOSEC.PUB — 27 Aug 2025
🕵️
🧠 Fuzzing Isn’t Just Science… It’s Experience
YOUTUBE.COM — 2025-08-27
🕵️
Microsoft ranked number one in modern endpoint security market share third year in a row
MICROSOFT.COM — 27 Aug 2025
🕵️
Back to School: Cybersecurity Education for All Ages
KNOWBE4.COM — 27 Aug 2025
🕵️
Magic Quadrant for Hybrid Mesh Firewall
PALOALTONETWORKS.COM — 27 Aug 2025
🕵️
China-Linked Hackers Hijack Web Traffic to Deliver Backdoor
SECURITYWEEK.COM — 27 Aug 2025
🕵️
PCI Wants Security Training for Humans… What About AI?
YOUTUBE.COM — 2025-08-27
🕵️
Hackers Weaponize Trust with AI-Crafted Emails to Deploy ScreenConnect
SECURITYWEEK.COM — 27 Aug 2025
🕵️
BlueHat Asia 2025: Closing soon: Submit your papers by September 5, 2025
MSRC.MICROSOFT.COM — 27 Aug 2025
🕵️
BlueHat Asia 2025: Closing soon: Submit your papers by September 14, 2025
MSRC.MICROSOFT.COM — 27 Aug 2025
📡
Interesting Technique to Launch a Shellcode, (Wed, Aug 27th)
ISC.SANS.EDU — 27 Aug 2025
📡
The 5 Golden Rules of Safe AI Adoption
THEHACKERNEWS.COM — 27 Aug 2025
📡
A Bold New Look for a Bold Future: Sophos’ Reimagined Brand
SOPHOS.COM — 27 Aug 2025
📡
BadCam attack: malicious firmware in "clean" webcams
KASPERSKY.COM — 27 Aug 2025
📡
Don’t let “back to school” become “back to (cyber)bullying”
WELIVESECURITY.COM — 27 Aug 2025